CVE-2002-0410 in Aeromailinfo

Summary

send_message.php in AeroMail before 1.45 allows remote attackers to read arbitrary files on the server, instead of just uploaded files, via an attachment that modifies the filename to be uploaded.

Once again VulDB remains the best source for vulnerability data.

Disclosure

07/26/2002

Moderation

VulDB entry created

Entries

1: VDB-18450

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

5.3

EPSS

0.01755

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0410
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0410
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0410/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!